sygate smc.exe service stopped - how to prevent ?

Hi All,
My pc appears to have been compromised a few days aback and my smc.exe service had been stopped. A download from Limewire was taking place at the time. I use the free version of processguard set to its default settings.

Is it possible to prevent the smc.exe service being stopped if you've file
sharing enabled on your pc in the shape of Limewire.

I'm sure some people will say it probably goes with the territory etc..?

I thought I'd still ask anyway...

System: win xp pro + sp2 + fully patched

 

As an addendum...I don't have a hardware router..would the router have
prevented the intrusion ?

 

Hi Steveo,

Probably not. AFAIK, firewalls block unsolicted packets including routers, whatever this was, it was part of a "solicited" stream from Limewire.

Regards - Charles

 

I don't use process guard and do not know if you are using paid version or not. I do know that appdefend/regdefend is better in my opinion I will not go into details, but it is not as well known and therefore less prone to attack. One other thing if you are to use malware-filled applications such as Limewire I would suggest Deep-Freeze from Faronics.com in conjunction with appdefend and simply reboot to fresh state when downloads and burning is complete.

 

Thanks for the responses received...there's been no further
occurences and the system has generally behaved well..

Should further problems develop then I may download trial
software of the suggestions mentioned.

Thanks again.
Steveo.

 

Hello,
Well, Limewire comes bundled with crap, so it does not come as a surprise.
Mrk

 

Not a surprise, as mrkvonic said, Limewire is a dangerous P2P application that can contain all sorts of malware that can terminate your critical security programs like firewall, antivirus and lots more. That it can terminate your firewall just like that means it could've done lots more damage to your system already.
It's going to be hell removing all the junk stuff from your system I assure you.
A fully updated & patched system CAN still be compromised.
Problems by using virtualisation programs that sandbox the whole system:
This is a useless method unless you're as well secured in the virtual state as you were in the physical state, all the damage and your personal info/stuff gets stolen if you just rely on doing a simple reboot only with no security apps. The only difference is that nothing in this state gets physical but I guess the damage is already done virtually but it just can't reach the physical side. This method still requires all your defences up.

 

Thanks for the additional responses received...as stated previously I've
not added any additional software to my existing set-up - Configured
advanced features within Sygate to block any interaction that requires
the use of explorer.exe and crss.exe.

So far so good...I'm a great fan of sygate's firewall so I'll continue using
it for the foreseeable future.... With Limewire, well I can take it or leave it..

This is slightly veering away from the original question but is there such
a thing as an approved P2P program where music and the like can be
downloaded ?...

Its funny that on the one hand Bittorrent is deemed in the malicious
bracket by some highbrow organisations and the next minute you hear
that hollywood is looking to use it to download movies to peoples pc
so I'm a bit unclear...

To P2P or not P2P ?
Steveo.

 

Hello,
To P2P or not is your personal decision. Although, it's nice to own the Big Brother a bit. You certainly should not let Hollywood set your moral standards. It's all up to you. Maybe you donate 100 dollars to UNICEF and say, hey, I can afford to download some! Who knows?
But if you are asking about CLEAN P2P, go with eMule, it's open source.
Mrk

 

Thanks for that...

 

FrostWire is a OSS clone of LimeWire Pro. No nasties.